Category: GBHackers

GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private Repositories
10
Oct
2025

GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private Repositories

A critical weakness in GitHub Copilot Chat discovered in June 2025 exposed private source code and secrets to attackers. Rated…

Share: X : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesFacebook : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesLinkedin : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesReddit : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesTelegram : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesWhatsApp : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private RepositoriesEmail : GitHub Copilot Flaw Allows Attackers to Steal Source Code from Private Repositories
LLM-Powered MalTerminal Malware Uses OpenAI GPT-4 to Create Ransomware Code
10
Oct
2025

LLM-Powered MalTerminal Malware Uses OpenAI GPT-4 to Create Ransomware Code

LLM-enabled malware poses new challenges for detection and threat hunting as malicious logic can be generated at runtime rather than…

Share: X : LLM-Powered MalTerminal Malware Uses OpenAI GPT-4 to Create Ransomware CodeFacebook : LLM-Powered MalTerminal Malware Uses OpenAI GPT-4 to Create Ransomware CodeLinkedin : LLM-Powered MalTerminal Malware Uses OpenAI GPT-4 to Create Ransomware CodeReddit : LLM-Powered MalTerminal Malware Uses OpenAI GPT-4 to Create Ransomware CodeTelegram : LLM-Powered MalTerminal Malware Uses OpenAI GPT-4 to Create Ransomware CodeWhatsApp : LLM-Powered MalTerminal Malware Uses OpenAI GPT-4 to Create Ransomware CodeEmail : LLM-Powered MalTerminal Malware Uses OpenAI GPT-4 to Create Ransomware Code
Gladinet CentreStack and Triofox 0-Day Flaw Under Active Attack
10
Oct
2025

Gladinet CentreStack and Triofox 0-Day Flaw Under Active Attack

Gladinet CentreStack and Triofox have come under active attack as threat actors exploit an unauthenticated local file inclusion flaw (CVE-2025-11371)….

Share: X : Gladinet CentreStack and Triofox 0-Day Flaw Under Active AttackFacebook : Gladinet CentreStack and Triofox 0-Day Flaw Under Active AttackLinkedin : Gladinet CentreStack and Triofox 0-Day Flaw Under Active AttackReddit : Gladinet CentreStack and Triofox 0-Day Flaw Under Active AttackTelegram : Gladinet CentreStack and Triofox 0-Day Flaw Under Active AttackWhatsApp : Gladinet CentreStack and Triofox 0-Day Flaw Under Active AttackEmail : Gladinet CentreStack and Triofox 0-Day Flaw Under Active Attack
RondoDox Botnet Targets Over 50 Vulnerabilities to Compromise Routers, CCTV Systems, and Web Servers
10
Oct
2025

RondoDox Botnet Targets Over 50 Vulnerabilities to Compromise Routers, CCTV Systems, and Web Servers

The RondoDox campaign’s “exploit shotgun” method leverages over 50 vulnerabilities across more than 30 vendors to infiltrate network devices, highlighting…

Share: X : RondoDox Botnet Targets Over 50 Vulnerabilities to Compromise Routers, CCTV Systems, and Web ServersFacebook : RondoDox Botnet Targets Over 50 Vulnerabilities to Compromise Routers, CCTV Systems, and Web ServersLinkedin : RondoDox Botnet Targets Over 50 Vulnerabilities to Compromise Routers, CCTV Systems, and Web ServersReddit : RondoDox Botnet Targets Over 50 Vulnerabilities to Compromise Routers, CCTV Systems, and Web ServersTelegram : RondoDox Botnet Targets Over 50 Vulnerabilities to Compromise Routers, CCTV Systems, and Web ServersWhatsApp : RondoDox Botnet Targets Over 50 Vulnerabilities to Compromise Routers, CCTV Systems, and Web ServersEmail : RondoDox Botnet Targets Over 50 Vulnerabilities to Compromise Routers, CCTV Systems, and Web Servers
ClayRat Android Malware Masquerades as WhatsApp & Google Photos
10
Oct
2025

ClayRat Android Malware Masquerades as WhatsApp & Google Photos

ClayRat, a rapidly evolving Android spyware campaign, has surged in activity over the past three months, with zLabs researchers observing…

Share: X : ClayRat Android Malware Masquerades as WhatsApp & Google PhotosFacebook : ClayRat Android Malware Masquerades as WhatsApp & Google PhotosLinkedin : ClayRat Android Malware Masquerades as WhatsApp & Google PhotosReddit : ClayRat Android Malware Masquerades as WhatsApp & Google PhotosTelegram : ClayRat Android Malware Masquerades as WhatsApp & Google PhotosWhatsApp : ClayRat Android Malware Masquerades as WhatsApp & Google PhotosEmail : ClayRat Android Malware Masquerades as WhatsApp & Google Photos
Snake Keylogger Uses Weaponized Emails and PowerShell to Steal Sensitive Data
10
Oct
2025

Snake Keylogger Uses Weaponized Emails and PowerShell to Steal Sensitive Data

A newly observed information‐stealing campaign is deploying a stealthy variant of the SnakeKeylogger malware via weaponized e-mails that masquerade as…

Share: X : Snake Keylogger Uses Weaponized Emails and PowerShell to Steal Sensitive DataFacebook : Snake Keylogger Uses Weaponized Emails and PowerShell to Steal Sensitive DataLinkedin : Snake Keylogger Uses Weaponized Emails and PowerShell to Steal Sensitive DataReddit : Snake Keylogger Uses Weaponized Emails and PowerShell to Steal Sensitive DataTelegram : Snake Keylogger Uses Weaponized Emails and PowerShell to Steal Sensitive DataWhatsApp : Snake Keylogger Uses Weaponized Emails and PowerShell to Steal Sensitive DataEmail : Snake Keylogger Uses Weaponized Emails and PowerShell to Steal Sensitive Data
Authorities Dismantle BreachForums’ Reemerged Clearnet Marketplace
10
Oct
2025

Authorities Dismantle BreachForums’ Reemerged Clearnet Marketplace

In a coordinated effort, international law enforcement agencies seized the clearnet domain breachforums[.]hn, shutting down yet another incarnation of the…

Share: X : Authorities Dismantle BreachForums’ Reemerged Clearnet MarketplaceFacebook : Authorities Dismantle BreachForums’ Reemerged Clearnet MarketplaceLinkedin : Authorities Dismantle BreachForums’ Reemerged Clearnet MarketplaceReddit : Authorities Dismantle BreachForums’ Reemerged Clearnet MarketplaceTelegram : Authorities Dismantle BreachForums’ Reemerged Clearnet MarketplaceWhatsApp : Authorities Dismantle BreachForums’ Reemerged Clearnet MarketplaceEmail : Authorities Dismantle BreachForums’ Reemerged Clearnet Marketplace
Google Issues Alert on CL0P Ransomware Actively Exploiting Oracle E-Business Suite Zero-Day
10
Oct
2025

Google Issues Alert on CL0P Ransomware Actively Exploiting Oracle E-Business Suite Zero-Day

Organizations using Oracle E-Business Suite must apply the October 4 emergency patches immediately to mitigate active, in-the-wild exploitation by CL0P…

Share: X : Google Issues Alert on CL0P Ransomware Actively Exploiting Oracle E-Business Suite Zero-DayFacebook : Google Issues Alert on CL0P Ransomware Actively Exploiting Oracle E-Business Suite Zero-DayLinkedin : Google Issues Alert on CL0P Ransomware Actively Exploiting Oracle E-Business Suite Zero-DayReddit : Google Issues Alert on CL0P Ransomware Actively Exploiting Oracle E-Business Suite Zero-DayTelegram : Google Issues Alert on CL0P Ransomware Actively Exploiting Oracle E-Business Suite Zero-DayWhatsApp : Google Issues Alert on CL0P Ransomware Actively Exploiting Oracle E-Business Suite Zero-DayEmail : Google Issues Alert on CL0P Ransomware Actively Exploiting Oracle E-Business Suite Zero-Day
Credit Card Payment Terminal Exploited for Remote Access
10
Oct
2025

Credit Card Payment Terminal Exploited for Remote Access

A security researcher has uncovered a significant vulnerability in a widely used payment terminal that could enable attackers to gain…

Share: X : Credit Card Payment Terminal Exploited for Remote AccessFacebook : Credit Card Payment Terminal Exploited for Remote AccessLinkedin : Credit Card Payment Terminal Exploited for Remote AccessReddit : Credit Card Payment Terminal Exploited for Remote AccessTelegram : Credit Card Payment Terminal Exploited for Remote AccessWhatsApp : Credit Card Payment Terminal Exploited for Remote AccessEmail : Credit Card Payment Terminal Exploited for Remote Access
7-Zip Vulnerabilities Allowing Remote Code Execution
10
Oct
2025

7-Zip Vulnerabilities Allowing Remote Code Execution

Two critical vulnerabilities in 7-Zip’s handling of ZIP archives have emerged, enabling remote attackers to execute arbitrary code by exploiting…

Share: X : 7-Zip Vulnerabilities Allowing Remote Code ExecutionFacebook : 7-Zip Vulnerabilities Allowing Remote Code ExecutionLinkedin : 7-Zip Vulnerabilities Allowing Remote Code ExecutionReddit : 7-Zip Vulnerabilities Allowing Remote Code ExecutionTelegram : 7-Zip Vulnerabilities Allowing Remote Code ExecutionWhatsApp : 7-Zip Vulnerabilities Allowing Remote Code ExecutionEmail : 7-Zip Vulnerabilities Allowing Remote Code Execution
Cybercriminals Impersonate HR Departments to Harvest Your Gmail Login Details
09
Oct
2025

Cybercriminals Impersonate HR Departments to Harvest Your Gmail Login Details

A seemingly legitimate Zoom document share from “HR” redirected victims through a fake bot-protection gate into a Gmail login phish….

Share: X : Cybercriminals Impersonate HR Departments to Harvest Your Gmail Login DetailsFacebook : Cybercriminals Impersonate HR Departments to Harvest Your Gmail Login DetailsLinkedin : Cybercriminals Impersonate HR Departments to Harvest Your Gmail Login DetailsReddit : Cybercriminals Impersonate HR Departments to Harvest Your Gmail Login DetailsTelegram : Cybercriminals Impersonate HR Departments to Harvest Your Gmail Login DetailsWhatsApp : Cybercriminals Impersonate HR Departments to Harvest Your Gmail Login DetailsEmail : Cybercriminals Impersonate HR Departments to Harvest Your Gmail Login Details
Threat Actors Exploit DFIR Tool Velociraptor in Ransomware Attacks
09
Oct
2025

Threat Actors Exploit DFIR Tool Velociraptor in Ransomware Attacks

Cisco Talos has confirmed that ransomware operators are now leveraging Velociraptor, an open-source digital forensics and incident response (DFIR) tool,…

Share: X : Threat Actors Exploit DFIR Tool Velociraptor in Ransomware AttacksFacebook : Threat Actors Exploit DFIR Tool Velociraptor in Ransomware AttacksLinkedin : Threat Actors Exploit DFIR Tool Velociraptor in Ransomware AttacksReddit : Threat Actors Exploit DFIR Tool Velociraptor in Ransomware AttacksTelegram : Threat Actors Exploit DFIR Tool Velociraptor in Ransomware AttacksWhatsApp : Threat Actors Exploit DFIR Tool Velociraptor in Ransomware AttacksEmail : Threat Actors Exploit DFIR Tool Velociraptor in Ransomware Attacks